logo
DATABASE RESOURCES PRICING ABOUT US

Authorization Bypass

Description

squirrelmail is vulnerable to authorization bypass. The vulnerability exists as an input sanitization flaw was found in the way SquirrelMail handled the content of various HTML input fields. A remote attacker could use this flaw to alter user preference values via a newline character contained in the input for these fields.


Affected Software


CPE Name Name Version
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5
squirrelmail 1.4.8__5.el4_8.8
squirrelmail 1.4.8__4.el5
squirrelmail 1.4.6__7.el4
squirrelmail 1.4.8__4.el4
squirrelmail 1.4.8__5.el4_7.3
squirrelmail 1.4.8__5.el4_7.2
squirrelmail 1.4.8__2.el4
squirrelmail 1.4.8__5.el4_8.5
squirrelmail 1.4.6__5.el4
squirrelmail 1.4.8__4.0.1.el4
squirrelmail 1.4.8__4.0.1.el5

Related